ESAPI Assurance

Building an Assurance Case for ESAPI

summary: make Claims, provide supporting Evidence, and make Arguments for how the evidence supports the claims

Highest level claim is "The system is Acceptably Secure" but how to break this down into sub-claims that map to the provided evidence? e.g. absence of specific vulns (as investigated by manual testing or tool scans)

Hey! How about an explicit threat model??? Especially, what are our assumptions.